Firewall Wizards mailing list archives

Previous By Date Next
Previous By Thread Next

Re: scanning...

From: Carric Dooley <carric () com2usa com>
Date: Tue, 8 Nov 2005 00:10:53 -0500 (EST)
It sounds like a real mess.  Ideally, you would need to scan everyting 
from each network from what you are saying, and that could be a little, 
err.. resource intensive?

I think if it were my network, I would consider finding a company who does
this regularly, and make the bastards that set it up pay for the expense
of getting someone to map it out (this is fair, but probably not
realistic.. ideally the contract language should have been rife with words
like "knowledge transfer", and "accurate documentation", etc.  Oh well..
something to keep in mind for next time).  I am digging my tired brain,
but there used to be this group that actually taught a class on network
mapping, and showed you how to do multi-layer layouts in Visio (this was
like 2000, and they were considered network troubleshooting gurus, I
guess).  GOT IT!! Pine Mountain Group (http://www.pmg.com/).


On Wed, 2 Nov 2005, Brian Loe wrote:


Let me ask all of you a fairly generic question that should garner
lots of different ideas. Let us say that you have gone to work for a
new company as a network admin. It is a fairly complex network with
multiple routers, switches and firewalls (a firewall for every router,
let's say). The current network team has no formal training and have
done all of their learning on the job, following a contracting company
who was paid to initially setup the network.

Okay, so how would you go about mapping out this network? You don't
have the understanding of devices by name yet, and each device is
likely to have 20 interfaces on it, with 20 IPs for 20 networks! You
live on a "management network", but it's only "management" because
it's a subnet which has been given telnet access to all of the devices
on the network - in other words, scanning with your usual tool (LAN
MapShot from Fluke - in my case, because it CAN start a pretty good
network diagram directly in Visio) from your "management" network
won't show you anything than it will from any other subnet.

Follow what I mean? Ideas? Pretend the network is yours and you're
free to change anything you want - where would you start?
_______________________________________________
firewall-wizards mailing list
firewall-wizards () honor icsalabs com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards



-- 
Carric Dooley
COM2:Interactive Media USA
http://www.com2usa.com

_______________________________________________
firewall-wizards mailing list
firewall-wizards () honor icsalabs com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards
Previous By Date Next
Previous By Thread Next

Current thread: